| Errata ID | 241 |
|---|---|
| Date | 2015-07-16 |
| Source package | clamav |
| Fixed in version | 0.98.7+dfsg-0.154.201506081449 |
| Description | ClamAV has been updated to version 0.98.7. This provides several fixes and enhancements and also addresses security problems. - Crash in upx decoder with crafted file (CVE-2015-2170) - Infinite loop condition on crafted y0da cryptor file (CVE-2015-2221) - Crash on crafted petite packed file (CVE-2015-2222) - Infinite loop condition on a crafted "xz" archive file (CVE-2015-2668) - Heap overflow vulnerability in regcomp.c (CVE-2015-2305) |
| Additional notes | |
| CVE ID | CVE-2015-2170 CVE-2015-2221 CVE-2015-2222 CVE-2015-2668 CVE-2015-2305 |
| UCS Bug number | #38425 |
